9+ hour, 41+ min ago   (976+ words) How unused access and storage fuel cyber breaches Attacks on digital infrastructure are high on the worry list for CISOs in every sector. They hit retail giants like M&S, car manufacturers like Jaguar Land Rover, hospitals and even nurseries....

1+ day, 14+ hour ago   (856+ words) What if the problem isn't too little security, but too much? According to the recent CISO Pressure Index survey, 73% of CISOs have experienced a major security incident in the past six months, and 58% say that this incident took place despite…...

2+ day, 3+ hour ago   (305+ words) Kimsuky's latest attacks can bypass email protections and MFA North Koreans are targeting US government institutions, think tanks, and academia with highly sophisticated QR code phishing, or 'quishing' attacks, going for their Microsoft 365, Okta, or VPN credentials. This is according…...

2+ day, 4+ hour ago   (196+ words) The directives served their purpose The US Cybersecurity and Infrastructure Security Agency (CISA) retired ten Emergency Directives (ED) it issued between 2019 and 2024, saying they achieved their purpose and are no longer needed. In a short announcement published on its website,…...

2+ day, 5+ hour ago   (294+ words) Despite the police's best efforts, ransomware continues to rise Despite the police's best efforts to rid the world of ransomware, not much has changed in 2025, and the infamous cybercriminal practice continued on its upward trajectory. This is according to "The…...

2+ day, 6+ hour ago   (311+ words) Bob is also susceptible to indirect prompt injection IBM's Generative Artificial Intelligence (GenAI) tool, Bob, is susceptible to the same dangerous attack vector as most other similar tools - indirect prompt injection. Indirect prompt injection is when the AI tool is…...

2+ day, 7+ hour ago   (262+ words) CrowdStrike looks to acquire SGNL by the end of April CrowdStrike has confirmed it will be acquiring identity security startup SGNL for around $740 million in a mostly-cash deal, subject to regulatory approval. This comes as IDC expects the identity security…...

2+ day, 8+ hour ago   (976+ words) Why cyber criminals are getting younger, and what to do next 17, 19 and 20. Those are the ages of the suspects in both the recent Kido nursery hack and the April attacks that left British retailers Marks & Spencer and The Co-operative with…...

2+ day, 13+ hour ago   (245+ words) ChatGPT was vulnerable to prompt injection, too OpenAI recently introduced a new feature for ChatGPT which, unfortunately, also puts users at risk of data exfiltration and persistent access. In December 2025, a feature called Connectors finally moved out of beta and…...

2+ day, 14+ hour ago   (500+ words) Digital rights experts say the order is illegal Citizens of the Indian-administered region of Jammu and Kashmir can now be prosecuted for using VPN apps. Authorities invoked Section 163 of India's criminal procedure code on December 29 to effectively impose a two-month…...